CVE-2002-0236
published 2002-05-29CVE-2002-0236: Lucent VitalSuite 8.0 through 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis, allows remote attackers to bypass authentication via a direct…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.41%
93.7th percentile
Lucent VitalSuite 8.0 through 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis, allows remote attackers to bypass authentication via a direct HTTP request to the VsSetCookie.exe program, which returns a valid cookie for the desired user.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lucent | vitalanalysis | — | — |
| lucent | vitalanalysis | — | — |
| lucent | vitalanalysis | — | — |
| lucent | vitalevent | — | — |
| lucent | vitalevent | — | — |
| lucent | vitalevent | — | — |
| lucent | vitalhelp | — | — |
| lucent | vitalhelp | — | — |
| lucent | vitalhelp | — | — |
| lucent | vitalnet | — | — |
| lucent | vitalnet | — | — |
| lucent | vitalnet | — | — |
| lucent | vitalsuite | — | — |
| lucent | vitalsuite | — | — |
| lucent | vitalsuite | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
2002-05-29
Published